VYPR

Tizen FOTA service

by Tizen

CVEs (2)

  • CVE-2021-25437CriJul 8, 2021
    risk 0.64cvss 9.8epss 0.02

    Improper access control vulnerability in Tizen FOTA service prior to Firmware update JUL-2021 Release allows attackers to arbitrary code execution by replacing FOTA update file.

  • CVE-2021-25436CriJul 8, 2021
    risk 0.64cvss 9.8epss 0.02

    Improper input validation vulnerability in Tizen FOTA service prior to Firmware update JUL-2021 Release allows arbitrary code execution via Samsung Accessory Protocol.